Go back
PayPoint achieves 10 year PCI DSS compliance milestone for its online payments platform

Leading payments provider joins an elite group of companies with ten years’ PCI DSS compliance

London, 14 August 2014: PayPoint, an international leader in payment technologies, has achieved PCI DSS (Payment Card Industry Data Security Standards) compliance for its online payment platform for the tenth consecutive year.  PCI specialist and Qualified Security Assessor Nettitude has confirmed PayPoint’s PCI Level 1 compliance, endorsing its online payment platform for meeting even the most stringent global security standards. This milestone demonstrates PayPoint’s long-term commitment to consistently meeting industry standards.

“At PayPoint, PCI DSS has always been a fundamental part of our business and is deeply baked into our business processes," commented Dan Salmons, Managing Director, PayPoint Mobile and Online.   “A decade ago, when we gained our first certification, the world of payments and mobile commerce was much less demanding.  With PCI now absolutely essential, we are proud to have achieved compliance for the tenth year running.  We feel it shows just how dedicated we are to creating a safe payment environment for our clients and their customers."

Research commissioned by PayPoint in May 2014 found that security is more important among consumers than convenience when deciding how to pay.  Over half of UK consumers (55%) view the security of our payment methods as the most important factor in deciding how we pay – while only a quarter (26%) believe convenience to be the most important deciding factor. The PCI Data Security Standards are a comprehensive set of global standards designed to ensure the highest levels of protection for consumer payment card data.  They apply to all businesses that process, store and transmit sensitive cardholder information, and certification must be renewed annually.

Ben Densham, Chief Technology Officer at Nettitude, added:  “The security criteria for achieving PCI compliance are extensive. They include a wide range of elements, from data encryption and network security to access to data and firewalls. We’re therefore happy to announce that, for the tenth year in a row, PayPoint’s online payments platform has achieved PCI compliance following a successful audit from the team at Nettitude.”



PayPoint Press Office
Robin Grainger, Brands2Life
020 7592 1200 / 07940 422 931
[email protected]

Peter Brooker
Head of Corporate Affairs, PayPoint
+44 (0)1707 600356/ +44 (0) 7900 418960
[email protected]


PayPoint is an international leader in payment technologies   which it delivers by taking the complexity of multi-channel payments and translating it into convenient, simple, value-added solutions through a uniquely strong combination of local shops, internet and mobile distribution channels. It handles over £14 billion from 775 million transactions annually for more than 6,000 clients and merchants.

PayPoint Mobile and Online (formerly trading as, PayByPhone and Adaptis) handles over 135 million payments for parking, payments and consumer services. Its core online payments platform is linked to 16 major acquiring banks in the UK, Europe and North America, delivering secure credit and debit card payments for over 5,100 online merchants. Its suite of products ranges from transaction gateway to a bureau service, in addition to value-added services such as FraudGuard, an advanced service that mitigates the risk of fraud in card not present transactions. Its parking solutions in the UK, Canada, USA, France, Switzerland and Australia make it easy for people to pay for parking by mobile and purchase electronic parking permits, while providing parking authorities automatic number plate recognition systems for car parks.

PayPoint’s branded retail networks include over 27,200 local shops in the UK, where it processes energy meter pre-payments, cash bill payments, mobile phone top-ups, transport tickets, BBC TV licences, cash withdrawals and a wide variety of other payment types, over 8,500 in Romania, processing cash bill payments for utilities, money transfers and mobile phone top-ups, and over 500 in the Republic of Ireland, processing mobile top-ups and bill payments.

Nettitude is a cyber security and risk management consultancy that provides businesses and public sector organisations with governance, risk management and compliance services.  Counting many of the FTSE 350 among its customers, Nettitude specialises in helping companies and organisations that can least afford to fall victim to a security breach due to the value of the data they hold, or the strict compliance regulations governing their industries.  Established in 2003, Nettitude has offices in Warwickshire, UK and New York, USA, from which it serves customers worldwide.  It is one of only a handful of companies to hold prestigious accreditations in information security testing including CREST, CESG CHECK and CESG CLAS, as well as the Payment Card Industry Data Security Standard (PCI DSS).  Nettitude’s specific services include penetration testing, PCI compliance, web application security testing and cyber incident response.  For more information, visit:

Print/Share this article